Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LxfE24Sw5tDp6omyBJHbuDeVQBA.roa
File: LxfE24Sw5tDp6omyBJHbuDeVQBA.roa (raw, json)
Hash identifier: Xw89vf+diNLQP548JGukvyFVp+sHDm2ag+MGZh2BFCw=
Subject key identifier: 2F:17:C4:DB:84:B0:E6:D0:E9:EA:89:B2:04:91:DB:B8:37:95:40:10
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B9C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LxfE24Sw5tDp6omyBJHbuDeVQBA.roa
Signing time: Sun 07 Feb 2021 06:26:50 +0000
ROA not before: Sun 07 Feb 2021 06:26:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 221.169.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2972 (0xb9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:26:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2F17C4DB84B0E6D0E9EA89B20491DBB837954010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bc:30:84:40:cd:e5:3e:6a:e0:b2:51:2b:f4:
a0:83:f6:05:62:9b:23:ef:59:b0:89:8d:8d:ed:5a:
4d:e0:0b:9a:a1:f9:62:d8:c2:05:f4:86:86:b3:4f:
0a:9e:0d:f7:7e:18:50:a5:95:ce:23:eb:3c:de:d2:
3f:9e:f1:8a:db:25:cd:64:17:f6:a8:eb:47:49:53:
3b:94:47:70:85:81:e3:ef:ce:39:d0:3d:40:f9:64:
98:75:48:25:c6:f9:9c:f2:e7:cf:b5:0b:de:33:69:
f8:08:33:06:18:98:2c:b0:7b:c4:a1:09:95:3b:23:
82:aa:1f:33:71:ad:2a:9a:f5:6d:19:fb:5d:f5:b1:
fb:07:6a:e4:1f:a3:fc:2b:f3:b1:62:a9:f7:d1:ec:
63:6a:65:c8:23:b7:78:8d:b4:89:d5:10:70:21:34:
2c:de:d3:a8:4e:cf:4a:d2:9d:98:c1:92:78:15:78:
3a:26:ca:cb:69:b2:5e:c9:32:1e:8d:1b:2b:87:ad:
0c:97:07:e1:53:03:d4:f5:65:7f:cc:00:61:e2:43:
6c:23:a1:a5:45:df:00:b7:d2:55:7c:4e:de:02:89:
88:eb:7a:2f:32:29:e5:40:09:c6:11:4c:3b:bb:9f:
83:14:cf:f7:5b:b8:7a:65:7a:5e:a4:3a:19:2c:bf:
7d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:17:C4:DB:84:B0:E6:D0:E9:EA:89:B2:04:91:DB:B8:37:95:40:10
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LxfE24Sw5tDp6omyBJHbuDeVQBA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
67:d9:8d:c6:58:4b:42:c2:5c:3f:c7:6a:56:21:29:ea:63:37:
7a:69:7f:7e:38:bd:96:5f:8e:49:d0:fb:c9:14:32:d4:a2:25:
c0:76:28:9a:9d:e2:0f:22:28:57:59:f4:ea:8e:2b:af:db:d7:
00:51:6f:3f:a7:dd:c3:88:95:4e:c8:79:8f:7b:ae:8f:44:57:
8a:d3:79:9a:0d:4a:f8:52:a7:8a:35:8f:25:6f:f5:38:ae:dd:
17:79:fa:78:72:8b:ad:f5:58:43:a3:b8:51:92:5f:37:19:38:
32:c2:d8:76:16:b1:a4:9b:7e:05:a0:65:fe:67:f3:5e:f1:d7:
87:a0:8a:41:88:ef:77:95:38:ff:f8:1d:37:9e:d2:ed:0d:19:
7a:6e:55:4a:c7:c8:64:85:0e:57:ec:f2:d1:56:db:1a:1f:02:
e8:dd:da:f7:52:19:15:67:cc:3f:45:aa:1c:39:7e:68:f6:62:
19:6d:ce:64:e8:ba:cd:59:c9:04:af:6f:17:50:15:19:68:2a:
a4:3f:dd:63:99:d7:35:8a:90:67:01:dd:53:cd:3b:79:6c:b0:
94:16:a6:a1:58:6a:2a:3e:09:a5:28:ac:c3:77:63:0d:52:e2:
48:d3:a5:a9:40:e1:9f:21:00:b4:ae:98:e6:17:be:26:80:f5:
82:13:3d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org